AlmaLinux

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:5061 Related CVEs: CVE-2023-30630 Upstream summary: The dmidecode packages provide utilities for extracting Intel 64 and Intel Itanium hardware information from the system BIOS or Extensible Firmware Interface (EFI), depending on the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:5081 Related CVEs: CVE-2023-38633 Upstream summary: The librsvg2 packages provide a Scalable Vector Graphics (SVG) library based on the libart library. Security Fix(es): * librsvg: Arbitrary file read when xinclude href has […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:4569 Related CVEs: CVE-2023-34969 CVE-2022-42010 CVE-2022-42011 CVE-2022-42012 Upstream summary: D-Bus is a system for sending messages between applications. It is used both for the system-wide message bus service, and as a per-user-login-session […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:4347 Related CVEs: CVE-2023-22652 Upstream summary: Libeconf is a highly flexible and configurable library to parse and manage key=value configuration files. It reads configuration file snippets from different directories and builds the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:2589 Related CVEs: CVE-2022-32323 Upstream summary: AutoTrace is a program for converting bitmaps to vector graphics. Security Fix(es): * autotrace: heap-buffer overflow via the ReadImage() at input-bmp.c (CVE-2022-32323) For more details about […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:2193 Related CVEs: CVE-2022-27664 CVE-2022-32189 Upstream summary: Butane translates human-readable Butane Configs into machine-readable Ignition configs for provisioning operating systems that use Ignition. The following packages have been upgraded to a later […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:2222 Related CVEs: CVE-2022-41717 Upstream summary: Conmon is an OCI container runtime monitor. Security Fix(es): * golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests (CVE-2022-41717) For more details […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:2502 Related CVEs: CVE-2022-2928 CVE-2022-2929 CVE-2021-25220 Upstream summary: The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:2487 Related CVEs: CVE-2022-3287 CVE-2022-34301 CVE-2022-34302 CVE-2022-34303 Upstream summary: The fwupd packages provide a service that allows session software to update device firmware. Security Fix(es): * fwupd: world readable password in /etc/fwupd/redfish.conf […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: AlmaLinux 9 📖 ~4 min read  •  Source: AlmaLinux ALSA ALSA-2023:2592 Related CVEs: CVE-2022-41715 Upstream summary: go-md2man converts markdown into roff (man pages). Security Fix(es): * golang: regexp/syntax: limit memory used by parsing regexps (CVE-2022-41715) For more details about the security issue(s), […]